Public bug reported: Openafs 1.4.4 was released a couple of days ago, and entered Debian experimental today.
I contains a lot of fixes of which the most important ones are: * SetUID is no longer honored for the local cell by default. The "fs setcellstatus" command must be issued for any cell the system administrator wishes to allow setuid files in. (OPENAFS-SA-2007-001, CVE 2007-1507) * Builds with the 2.6.20 kernel. The patches I grabbed for 1.4.2-4ubuntu1 made it build with 2.6.20, however I'm not sure they are complete. * A couple of crashes. Annonucement with full details at: http://www.openafs.org/pipermail /openafs-announce/2007/000185.html In my opinion it is better to go with the new upstream version which only requires a sync from debian, than trying to patch 1.4.2-4ubuntu1 further. The changes in -4ubuntu1 can be dropped. I'm currently testing it and will also build it internally for Dapper and depolying it on our clusters so that we can have a lot more testing. /torkel ** Affects: Ubuntu Importance: Undecided Status: Unconfirmed -- UVF Exeption for OpenAFS 1.4.4 - please sync from debian https://launchpad.net/bugs/96931 -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs